Control and management port for nm-cids

Can any body help me to find the difference between the ip address that we use at the interface ids-sensore 1/0 and the ip address of the sensor and its default gateway
10.10.10.2/24,10.10.10.1

NM-CIDS information:
There are 3 interfaces that you need to be aware of with the NM-CIDS.
The NM-CIDS module has 2 interfaces (FastEthernet0/0 and FastEthernet0/1).
The 3rd interface actually belongs to the router (IDS-sensor1/0)
The Fa0/0 interface of the NM-CIDS is the external port of the NM-CIDS. When an IP Address is assigned to the NM-CIDS through the "setup" command, the IP is assigned to this Fa0/0 interface.
The Fa0/0 interface is the external interface and so will need to be plugged into a hub (or switch), and the IP addresses assigned to it must be an address within the network address range for that network (vlan). The default gateway should be the same default gateway for the other boxes on that network, the default gateway may be one of the addresses of the router in which the NM-CIDS was installed, or could be a completely different router. The NM-CIDS Fa0/0 interface could have been plugged into a completely different network than any of the interfaces of it's parent router.
Say for example that FastEthernet2/1 of the router is connected to vlan 10 on the switch and assigned an IP Address of 10.1.1.1. The Fa0/1 interface of the NM-CIDS is also plugged into the same switch on vlan 10. Because Fa0/1 of the NM-CIDS is plugged into the same network as Fa2/1 of the router, then both ip addresses can be in the same network and the router IP can be the gateway for the NM-CIDS. The Fa0/1 can have IP 10.1.1.30 with gateway 10.1.1.1 (Fa2/1 of the router).
Alternatively the Fa0/1 of the NM-CIDS could have been plugged into vlan 30 (network 192.168.1.0) of the switch where the router does not have any of interfaces. In this case the Fa0/1 of the NM-CIDS won't be in the same network as any of the router interfaces. So the Fa0/1 of the NM-CIDS will need an IP address with that network: 192.168.1.27 for example. And the gateway for the NM-CIDS would need to be whatever OTHER router is the default gateway on that network: 192.168.1.1 for example.
The Fa0/1 interface of the NM-CIDS is the internal interface of the NM-CIDS on the backplane of the router. The Analysis Engine should be configured to monitor this interface.
The "IDS-Sensor1/0" interface is the router's backplane interface to the NM-CIDS, and has 2 functions.
1) When the router is configured to send packets to the NM-CIDS for analysis the packts will be sent through the router's IDS-Sensor1/0 interface to the router backplane into the Fa0/1 interface of the NM-CIDS. You can almost think of IDS-Sensor1/0 and Fa0/1 as having a wire between (the wire being the router backplane).
2) The IDS-Sensor1/0 also serves a second purpose. The IDS-Sensor1/0 ALSO connects to a special part of the NM-CIDS hardware that acts as a console port for the NM-CIDS. When you "session" to the NM-CIDS what is actually happening is a telnet through this IDS-Sensor1/0 interface into the backplane of the router to that special part of the NM-CIDS hardware. So when you session to the NM-CIDS it looks like a console port. It is because of this "telneting" as part of the session command that the router needs an address for the IDS-Sensor1/0 interface.
The address assigned to the IDS-Sensor1/0 interface is never seen by the IPS software on the NM-CIDS, it is only used by the router inorder to support the session command. This IDS-Sensor1/0 address does not need to be routable so it can be an internal loopback address as seen in this example: http://www.cisco.com/univercd/cc/td/doc/product/iaabu/csids/csids12/cliguide/clinmcid.htm#wp1030678
The loopback address is just a single address on a network that you are never going to use and never need to route packets to.
This IP Address for IDS-Sensor1/0 should NOT be confused with the IP Address that was assigned to the Fa0/1 interface of the NM-CIDS.

Similar Messages

  • Installing Grid Control and managing DBs on desktop

    I want to install Grid Control, and manage DB on my own testing environment on desktops...I tried one time to install Grid Control on my desktop i become very slow. Now i am thinking to buy new Desktop dedicated for Grid Control only and see how it goes...any suggestions?
    2nd how i can access my DB on the other desktop? Like i should install agents on that...and how to configure....

    When teaching this class I typically have 6 pairs of students sharing a single P4 3Ghz with 4Gb of RAM gridserver. (combined 10.1.0.4 emrep with single OMS on RH 3 AS)
    THis is more than enough for the 150 or so targets that we configure during class
    The agents are deployed in any of several methods.(the install DVD is probabally the easiest for 1's and 2's) If you are monitoring a db expect to use about 150Mb of RAM for the agent. After setting up the agent ensure that your computer has local security policy configured so that "Login as Batch" is enabled for the user account that will be used for authentication to the desktop. (this also means that you need to have a windows password configured for that account as well).
    The database configuration is semi-automatic once you have the agent installed on the desktop (it's called discovery)

  • Hi, I'm using a Mac Pro here. I am trying to connect it with my NAS hard drive. But i could not connect to it because i have an ethernet which connects to the intranet in my company and Air Port for the internet.

    Hi, I'm using a Mac Pro here. I am trying to connect it with my NAS hard drive. But i could not connect to it because i have an ethernet which connects to the intranet in my company and Air Port for the internet and it could not detect the the ip address after i input the correct address on "Connect to Server" window. Please help! Urgent! Thanks

    I did not say it is not possible.
    I said if your company networks are monopolizing both ports, you should talk to them about what options are available.
    Maybe you can get the company Intranet over wireless if you change some configuration items such as Subnet Mask.
    Maybe you can get on the Internet over Ethernet.
    You really need to ask them, and do not let them blow you off because you have a Mac. If they balk, ask them how it would be done on a PC (becasue it will be the same on a Mac).

  • Please help me with my electrical engineering homework : temperature control and watering system for greenhouse using labview and arduino

    temperature control and watering system for greenhouse using labview and arduino
    spesification :
    1. max temp : 28 celcius (when temperature is more than 28 celcius, fan ON)
    2. min temp : 20 celcius (when temperature is under 20 celcius, heater ON)
    3. watering system : aquaponic (grow plant and fish in separate tank but connect each other). Plant roots help filter water for fish. Fish poop for plants fertilizer. So I need a pump to distribute water.
    Please help me create VI file simulation.. I'm sorry I'm not fluent in English. May God bless you all
    Attachments:
    YOOOSHH.vi ‏88 KB

    Duplicate thread.   Please keep the discussion in that thread where you already have a response. It is also the more appropriate thread for your question.
    Lynn

  • How to control and manage several microsoft accounts and have control

    Windows 8 has brought many unique challenges, and very few IT people seem to be able to answer questions like this.
    I  am a mechanical engineer for a small company who wishes to install Windows server2012 on a new server with new laptops for each user, and some users are intended to have windows tablets in addition to having laptops.
    We have written policy in place with regard to using office equipment only for business use, not personal, and that all information is confidential, and only free applications may be downloaded or else they will be paid for by the company for all
    who require to use them, so there are no issues with regard to who owns what.
    Please reply to the question below in simple language, I understand computers and software and how they work, but I am not an IT guy, and our company cannot afford to employ a permanent IT person, so I need to be able to ensure that certain controls
    are in place and effected properly by the IT contractor we employ.
    The company must at all times have control over and access to all data on laptops and the server, as it is all intellectual property of the company. How do we create Microsoft accounts that allow us to remain in control despite employees using their
    mail address and personal pin numbers as an alias to operate ?

    Hi,
    As I know, SCOM (system Center Operations Manager) can do some monitor jobs which is close to your goal. It is a cross-platform data center management system for operating systems and hypervisors. It uses a single interface that shows state,
    health and performance information of computer systems. It also provides alerts generated according to some availability, performance, configuration or security situation being identified.
    Operations Guide for System Center 2012 - Operations Manager
    http://technet.microsoft.com/en-us/library/hh212887.aspx
    If you want more information about this product, you can open a further discussion in the forum below
    System Center Operation Manager Forum
    http://social.technet.microsoft.com/Forums/systemcenter/en-US/home?category=systemcenteroperationsmanager
    Yolanda Zhu
    TechNet Community Support

  • GRID Control and management  hostname

    With a HA deployment you have to set :
    emd.properties:#AgentListenOnAllNICs=FALSE
    This is ok for me but the servers have 3 differents IP adresses (3 differents hostname), one is foucuss for management tasks and this is not the name registered by the Agent.
    Do you know if it is possible to run host scripts (external jobs) with Grid Control and to specify the hostname where these jobs have to run by default the jobs will run on the hostname registered by the Agent.

    Hello,
    There is currently no support for CEP in Grid Control.
    andy

  • Management port for management switch(2960x) / IP default-gateway for L2 management switch

    1)   
    I am going to connect all mgmt ports of server to this access switch (L2; 2960x) like below. Then I have a management port in 2960x (FastEthernet / L3 port). As you can see below, even though one of Core switch is down, I am able to access through the other Core switch for mgmt SW. Do I need this FastEthernet port of 2960X?
    Core Pri -------  Core Sec   (Core Pri 192.168.1.2 / Sec 192.168.1.3 / HSRP VIP 192.168.1.1)
                mgmt SW ----- (FastEthernet0) ------ Goes to where? I don't have RAS (Remote Access Server)
                      |
                      |
          servers' mgmt ports
    http://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst2960/software/release/12-2_55_se/configuration/guide/scg_2960/swint.html#wp2220949
    2) From server side, server put default gateway (192.168.0.1) so if destination is not known, it dumps all to default gateway. This is L3. I understand this. What about L2 default gateway from switch itself? The L2 access switch supports "ip default-gateway" command. I know that without this command still servers do not have any problems to connect to network. Then this command is for switch (2960x) itself? i.e I log into the switch and ping google.com then switch will try to resolve through DNS, but if DNS is not set up in the switch, it sends all traffic to "ip default-gateway"? Is it right?
    3) If L2 (Access) switch has multiple data vlans and mgmt vlan (10.0.0.0/24  10.0.10.0/24 192.168.0.1). Then what will be the "ip default-gateway" for this switch?
    Thanks for your time and knowledge.
    ======================== Reference from Cisco regarding ip default-gateway --------------------------------------
    How to configure the ip default-gateway command on a Cisco 3550 series switch
    VERSION 2 
    Resolution
    To define a default gateway when IP routing is disabled, issue the ip default-gateway global configuration command. Then, enter the IP address of the next-hop router interface that is directly connected to the switch where a  default gateway is being configured.
    The default gateway receives IP packets with unresolved destination IP addresses from the switch. Once the default gateway is configured, the switch has connectivity to the remote networks with which a host needs to communicate.
    Note: When the switch is configured to route with IP, it does not need to have a default gateway set.
    For more information, refer to Assigning the Switch IP Address and Default Gateway.
    ip default-gateway
    https://supportforums.cisco.com/docs/DOC-5090

    Vlan 99 is management port. This is an access switch. I am accessing this swtich through SSH remotely (10.1.2.x)
    WirelessSWLab#sh ip int b
    Interface              IP-Address      OK? Method Status                Protocol
    Vlan1                  unassigned      YES NVRAM  administratively down down   
    Vlan99                 10.1.99.35      YES manual up                    up     
    GigabitEthernet0/1     unassigned      YES unset  up                    up     
    GigabitEthernet0/2     unassigned      YES unset  down                  down   
    GigabitEthernet0/3     unassigned      YES unset  down                  down   
    GigabitEthernet0/4     unassigned      YES unset  down                  down   
    GigabitEthernet0/5     unassigned      YES unset  down                  down   
    GigabitEthernet0/6     unassigned      YES unset  down                  down   
    GigabitEthernet0/7     unassigned      YES unset  down                  down   
    GigabitEthernet0/8     unassigned      YES unset  down                  down   
    GigabitEthernet0/9     unassigned      YES unset  down                  down   
    GigabitEthernet0/10    unassigned      YES unset  down                  down   
    GigabitEthernet0/11    unassigned      YES unset  down                  down   
    GigabitEthernet0/12    unassigned      YES unset  down                  down   
    GigabitEthernet0/13    unassigned      YES unset  down                  down   
    GigabitEthernet0/14    unassigned      YES unset  down                  down   
    GigabitEthernet0/15    unassigned      YES unset  down                  down   
    GigabitEthernet0/16    unassigned      YES unset  down                  down   
    GigabitEthernet0/17    unassigned      YES unset  down                  down   
    GigabitEthernet0/18    unassigned      YES unset  down                  down   
    GigabitEthernet0/19    unassigned      YES unset  down                  down   
    GigabitEthernet0/20    unassigned      YES unset  down                  down   
    GigabitEthernet0/21    unassigned      YES unset  down                  down   
    GigabitEthernet0/22    unassigned      YES unset  down                  down   
    GigabitEthernet0/23    unassigned      YES unset  down                  down   
    GigabitEthernet0/24    unassigned      YES unset  up                    up     
    WirelessSWLab#

  • Qosmio X300 - Remote control and function bar for windows seven

    Hi,
    I have bought this PC with Vista x64. I have upgraded it to windows 7 (x64)
    But I didn??t find driver for remote control and function bar. The drivers for Vista *64 don't work.
    Help me plz.
    Thanks for reading
    (Sry for my bad English)

    Hi
    The Win 7 drivers are not available for this unit at this time.
    But I found some Win 7 drivers on the Toshiba US driver page.
    Of course you will not find exactly the same X300 series but you can choose the drives released for Qosmio X305-xxxx
    There is no big difference between X300 and X305 so the Win 7 drivers should work too

  • Example wsdl and logical port for consumer proxy anyone ?

    Hi,
    Could please somebody give me an example of external WSDL file and logcial port created for the WSDL file in SOAMANAGER ?
    I need to create manually logical port for my consumer proxy and I am missing something because my logical port is not active.
    Any example is more than welcome. 
    I need to know how to populate fields manually on the following tabs based on the info in a WSDL file:
      Consumer Security  Additional Information  Web Service Addressing  Messaging  Transport settings  Message Attachments  Operation specifi
    Thanks and Regards
    Agnieszka
    The message, I am getting, when creating logical port is:
    Operation 'SrtFmStatefulTf' not found [NS: 'urn:sap-com:document:sap:soap:functions:mc-style']
    I think that maybe something is wrong with my wsdl.
    Edited by: Agnieszka Domanska on Nov 17, 2010 5:41 PM

    Hi Milan,
    this kind of error occurs when there is no service and end point description in the WSDL of provider who's service you are trying to consume using Consumer Proxy.
    Just open the provider's WSDL URL that you have given while creating Logical port for the consumer proxy   and check if service and end point exists there.
    Thanks
    Sunil Singh

  • Text search and management software for Linux?

    I am searching for text search and management software similar to askSAM.
    http://www.asksam.com/

    Perhaps my comment in your other thread will help.
    tt2
    PS I don't know about the Mac, but Notepad++ will probably do your search & replace on the PC if you have to edit the XML.
    Message was edited by: turingtest2

  • Copy control and program name for Sales Order to Delivery

    Hi,
    Please provide the copy control and program name to split a single delivery into multiple invoices depending on the sales order it belonged to and to split a single sales order into multiple deliveries depending on the shipping type.
    Thanks in advance.

    Hi there,
    In VTFL, at item level, there is a field called "Data VBRK/VBRP". Routine 001 & 007 are for invoice split. Those may be relevant for your case.
    In VOFM, select data transfer --> billing docs in the menu bar. It will give you the requirement numbers & their description.
    Select the required routine num & click on Source text (note pad icon) on the above. It will give you the prog / include names.
    For eg for 001 its FV60C001, for 007 its FV60C007.
    Regards,
    Sivanand

  • Sata Ports how to use # 5 and 6 port for storage K9A2 Platinum

    This could be a real stupid question , I know port 5 and 6 are controlled by the promise controller. but when I plug something in to these ports nothing happens. Do you need to load the drivers, I really do not want to use raid would just like to plug in hard drives for storage only.
    Would appreciate the help

    What he said,
    enable extra raid controller in Bios,
    do not set up raid when you boot, just let it go through it's thing or hit "space bar" and it will skip through the raid setup stuff.. 
    grab your promise drivers from here :
    http://global.msi.com.tw/index.php?func=downloaddetail&type=driver&maincat_no=1&prod_no=1332
    now that you are there update other drivers as well.
    I love that promise controller --> eSata on the back , nice hot swap hard drive port.  I use it to do Norton ghost  backups. Much faster than through USB-HD. When back ups are done, just unplug it.

  • Questions about remote control and infrared port Qosmio F20

    Hi again,
    My Toshiba Qosmio F20 comes with a remote control funcioning through a infrared device on the front of the computer.
    Regarding this I have 2 questions:
    1. How do I configure additonal functionality through the remote control? (Like launching and controlling Winamp?)
    2. How do I connect other devices, like my cellular phone, pdas etc., to the infrared device on my computer?
    Kind regards,
    Vegard

    Hi,
    the Remote Control delivered with the Qosmio F20 is designed only for Windows XP Media Center Edition (all Remote Control's which are designed for Windows XP Media Center Edition work only with Media Center or Windows Media Player). Other program's like Winamp were not supported by these Remote Control's.
    I believe, the Remote Control's are made by Microsoft and for a wide palette of product's (the Infrared Transceiver is on nearly all Media Center PC's e.g. Siemens-Fujitsu, the same). So it's a little bit tricky to support more program's then Media Center or Windows Media Player.
    For other program's you need a second Remote Control like this one:
    http://www.logitech.com/index.cfm/products/detailsharmony/GB/EN,CRID=2084,CONTENTID=9193
    br, Ben

  • Opening spesific incoming and outgoing ports for game hosting for instance?

    I have tried this for a little while now and can't really figure it out. Seems like you are required to get ip-adresse aswell, but in fact Battle.net for example doesn't have one. I know that it requires to open ports: 6112-6119, 116 and 118, but no specific ip. Please help figure this out! I got to be able to host a game. The game is Warcraft 3; Frozen Throne. If you know the exact answer please answer me at [email protected] I really need help at this.
    Thanks!

    The IP address required would be the one you assign the device that will be hosting Warcraft 3. This device will be on your local area network (LAN). In order for others on the Internet to access it, you will need set up your router for port forwarding/mapping.
    Port forwarding/mapping basically takes two steps:
    - Assign a static IP address to a device on your LAN that needs to be accessed from the Internet.
    - Open port(s) in your Internet routers firewall.
    What is the make & model of your Internet router? ...is it an AirPort or another vendor's product?

  • Version control and Approval service for folder of File Server

    Hi,
    We have recently integrated Windows file server to portal using webDav connector. I am unable to use the services (approval and versioning) for this new repository. How to enable the services for this repository?
    KM content stored in PCD is having approval and versioning services and we are using them.
    Many thanks in advance.
    Syam.T

    Hi Shyam,
    U need to enable the services specific to the repository that u have created.
    A restart may also be reqd.
    u need to go to Content Management->Repository Manager->File System Repository
    Add the services to the FS Repository u have created.
    Regards
    BP

Maybe you are looking for

  • Mail is getting stuck in my outbox?

    Hi I've got a 13" Macbook Air that's about 12 months old. It's got a 1.7ghz I7 processor and 8GB of RAM.  About 2-3 weeks ago I started having intermittent issues sending email where my mail just sits in the outbox and doesn't send. I'm using the App

  • Duplex printing issues

    Hi all, run into a problem with duplex printing in oracle reports lately where data for seperate groups is ending up on the previous or next group's page. This is using 10g and a xerox high speed printer. Basically if I have a report with groups a, b

  • Preview append

    I see in here http://support.apple.com/kb/ht4075 that preview can be used to merge/extract pages from different pdf files. Is there a simpler way to append pdf pages to existing pdf files? What I often to is print->save as->pdf, and very often I want

  • I'm having problems installing Photoshop Cs6 using the Akamai download manager.Is anyone else having an issue?

    Anyone also having problems?

  • Relation ship between table USR02 and ADRP

    Hi all, My requirement is to dispaly the userid , username, address and email id. iam unable to find the realtionship  between table USR02 ( which maintains userid's) and ADRP( which has user name, etcs). Please tell the how to fetch the name , addre